This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/1B5E26228FA911EF90043A7CC4F9AE02.roa File: 1B5E26228FA911EF90043A7CC4F9AE02.roa (raw, json) Hash identifier: B6AplExmLrIT4R5ziT3lWEDw+OK86D2hSg+6JuEpzR0= Subject key identifier: 3D:C3:04:98:C0:A6:0D:52:03:9D:04:5C:0D:BB:5F:50:6C:C9:1F:76 Certificate issuer: /CN=A91EBA0E/serialNumber=926D9ADC6FB873D765BB41227280C1F11846EE17 Certificate serial: 0210 Authority key identifier: 92:6D:9A:DC:6F:B8:73:D7:65:BB:41:22:72:80:C1:F1:18:46:EE:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/1B5E26228FA911EF90043A7CC4F9AE02.roa Signing time: Wed 19 Nov 2025 01:18:29 +0000 ROA not before: Wed 19 Nov 2025 01:18:29 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 147186 IP address blocks: 103.174.86.0/23 maxlen: 23 2400:68e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.crl rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 01:05:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 528 (0x210) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBA0E, serialNumber=926D9ADC6FB873D765BB41227280C1F11846EE17 Validity Not Before: Nov 19 01:18:29 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=691d1ae5-e0f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:07:97:26:90:6a:e2:f9:8c:85:05:91:12:68: 77:96:d5:5e:39:87:2f:84:2a:d1:4e:71:28:a0:fb: e5:ce:b3:f3:f4:b1:14:75:e6:40:08:56:3f:94:ac: 54:f5:22:d8:05:27:96:25:13:8e:94:e6:3d:e6:40: 67:72:9f:9e:89:f9:24:40:ee:90:b4:e3:0e:9e:9c: 61:f8:fd:58:5f:fd:7f:26:bb:07:7d:4f:c9:7a:52: 1e:da:fe:b3:4e:40:6a:e3:68:de:82:ff:32:36:2d: 12:9d:0f:78:dc:7a:b5:56:a1:08:90:1f:8f:7b:f0: da:de:46:0b:22:31:e8:c9:d8:9f:d4:30:c6:40:a9: 61:48:31:22:e3:d5:a6:28:7e:d4:4f:17:70:b2:79: 69:53:56:b1:6e:5a:07:d4:09:72:fc:4f:d5:83:cf: 5a:b3:c2:50:8a:7a:2a:04:14:ae:51:9c:4a:38:99: c1:93:76:dd:89:8a:24:bb:51:4d:86:af:d7:ea:e3: c1:be:8a:9a:1d:75:43:5d:8b:a4:84:6a:f3:10:f7: f5:e5:36:22:68:e7:80:45:bc:e9:62:f8:23:27:b0: 7f:a2:1a:b8:e6:62:ba:bb:81:2f:29:12:7d:1c:b8: 84:f6:0e:7c:2c:a9:2c:f7:d6:2a:47:39:00:1c:b5: bd:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:C3:04:98:C0:A6:0D:52:03:9D:04:5C:0D:BB:5F:50:6C:C9:1F:76 X509v3 Authority Key Identifier: keyid:92:6D:9A:DC:6F:B8:73:D7:65:BB:41:22:72:80:C1:F1:18:46:EE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/1B5E26228FA911EF90043A7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.86.0/23 IPv6: 2400:68e0::/32 Signature Algorithm: sha256WithRSAEncryption c9:97:5b:15:29:53:37:c9:a5:01:77:49:93:11:f5:f4:dc:12: 94:92:70:51:5f:e9:0c:c2:43:e7:7b:a5:8a:7f:c1:37:c6:b2: f9:01:1b:c1:71:f7:7d:b8:f1:4f:83:54:fb:c5:ba:da:ef:b8: 4c:bc:cb:de:00:4a:94:a5:5d:5c:29:6a:61:8c:a1:08:ca:30: b4:64:e3:d0:80:67:0f:57:1f:8e:1b:30:43:89:7a:2b:72:83: dd:ed:e6:71:66:5c:9c:e9:1a:66:77:d3:ba:a2:96:a4:f7:eb: 84:6c:64:aa:0c:c9:4e:bb:6c:ee:b0:b6:29:6d:6b:2b:c8:4a: 8a:04:dd:a6:b2:76:be:61:f7:33:ba:14:8a:66:28:d7:aa:52: 7c:6f:af:ce:8c:7a:70:55:01:4f:f0:3f:23:b1:90:3e:92:99: ae:3d:b1:b4:f1:50:31:b9:1f:c0:ee:1e:5a:41:66:34:f0:00: 1d:62:32:9f:e6:c9:89:63:1b:0a:08:84:5c:32:61:7c:f9:fe: 31:7a:45:ef:26:f4:aa:e1:a6:7a:30:4f:68:18:9c:36:9b:2b: ba:c8:70:ac:01:91:e3:e8:23:50:18:e5:c2:fa:c2:c9:89:26: 1f:0c:dc:41:d2:d4:2e:e4:0a:dc:d9:f9:f1:12:5f:12:dd:ac: b7:6e:fb:9b -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJBMEUxMTAvBgNVBAUTKDkyNkQ5QURDNkZCODczRDc2NUJCNDEyMjcyODBDMUYx MTg0NkVFMTcwHhcNMjUxMTE5MDExODI5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTFkMWFlNS1lMGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqweXJpBq4vmMhQWREmh3ltVeOYcvhCrRTnEooPvlzrPz9LEUdeZACFY/lKxU 9SLYBSeWJROOlOY95kBncp+eifkkQO6QtOMOnpxh+P1YX/1/JrsHfU/JelIe2v6z TkBq42jegv8yNi0SnQ943Hq1VqEIkB+Pe/Da3kYLIjHoydif1DDGQKlhSDEi49Wm KH7UTxdwsnlpU1axbloH1Aly/E/Vg89as8JQinoqBBSuUZxKOJnBk3bdiYoku1FN hq/X6uPBvoqaHXVDXYukhGrzEPf15TYiaOeARbzpYvgjJ7B/ohq45mK6u4EvKRJ9 HLiE9g58LKks99YqRzkAHLW9gQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFD3DBJjA pg1SA50EXA27X1BsyR92MB8GA1UdIwQYMBaAFJJtmtxvuHPXZbtBInKAwfEYRu4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkEwRS9EQkJFRDIwNkMw MDUxMUVEQTI1NUZBMTBDNEY5QUUwMi9rbTJhM0ctNGM5ZGx1MEVpY29EQjhSaEc3 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ttMmEzRy00YzlkbHUwRWljb0RCOFJoRzdoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUJBMEUvREJCRUQyMDZDMDA1MTFFREEyNTVGQTEwQzRGOUFFMDIvMUI1RTI2MjI4 RkE5MTFFRjkwMDQzQTdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnrlYwDQQCAAIwBwMFACQAaOAwDQYJKoZIhvcNAQELBQAD ggEBAMmXWxUpUzfJpQF3SZMR9fTcEpSScFFf6QzCQ+d7pYp/wTfGsvkBG8Fx9324 8U+DVPvFutrvuEy8y94ASpSlXVwpamGMoQjKMLRk49CAZw9XH44bMEOJeityg93t 5nFmXJzpGmZ307qilqT364RsZKoMyU67bO6wtiltayvISooE3aaydr5h9zO6FIpm KNeqUnxvr86MenBVAU/wPyOxkD6Sma49sbTxUDG5H8DuHlpBZjTwAB1iMp/myYlj GwoIhFwyYXz5/jF6Re8m9KrhpnowT2gYnDabK7rIcKwBkePoI1AY5cL6wsmJJh8M 3EHS1C7kCtzZ+fESXxLdrLdu+5s= -----END CERTIFICATE-----Generated at Tue Dec 2 04:13:58 2025 by rpki-client